• Log in / Sign up

    Security & Trust

    How ShipThis protects your game code and data.

    Last updated: March 2026

    How Your Data Flows

    From upload to build output β€” here's the path your data takes.

    1

    Upload

    You upload your game code via the ShipThis CLI over TLS 1.3.

    2

    Encrypted Storage

    Code is stored in an encrypted bucket in Amsterdam, EU (DigitalOcean).

    3

    Ephemeral Build

    A temporary build machine in AWS US-East receives a signed URL, downloads the code, and runs the build.

    4

    Build Output

    APK, AAB, or IPA is produced and stored. The build machine is destroyed.

    5

    Auto-Deletion

    All code and build outputs are automatically deleted after 30 days.

    Data Protection & Privacy

    Compliance and transparency by default.

    ICO Registered

    Registered with the UK Information Commissioner's Office (ZB812823).

    GDPR Compliant

    Compliant with both UK GDPR and EU GDPR. We process data lawfully, transparently, and only for stated purposes.

    Published Legal Documents

    Our Privacy Policy, Terms and Conditions, and Data Processing Agreement are publicly available.

    Data Protection Officer

    A designated DPO is available for all data protection enquiries.

    Minimal Data Collection

    We only collect what's needed to run the service. We don't sell personal data. One strictly necessary cookie protects the site (Cloudflare). Google Ads may set measurement cookies only with your consent where the law requires itβ€”see our Privacy Policy.

    Encryption

    Your data is encrypted in transit and at rest.

    TLS 1.3 Everywhere

    All connections use TLS 1.3 β€” client to backend, backend to build servers.

    Encrypted at Rest

    Customer data is encrypted using LUKS on managed database clusters.

    Credential Storage

    Service account keys are stored in a private, encrypted storage bucket in Amsterdam, EU.

    Signed URLs

    All file access uses short-lived signed URLs. No persistent or browsable access to stored files.

    Code Handling & Build Security

    Your game code is never retained beyond what's needed to build.

    Ephemeral Build Machines

    Build machines are provisioned per job and destroyed after. No files persist between builds.

    Job Isolation

    Each build machine receives only a temporary signed URL for its specific job. It cannot access anything else.

    Full Cleanup

    After every build, all downloaded files, intermediates, and temporary data are deleted.

    30-Day Auto-Deletion

    All uploaded game code and build outputs (APK, AAB, IPA) are automatically deleted after 30 days.

    Read more about how your code is handled

    Data Residency & Infrastructure

    Where your data lives and who processes it.

    Customer Data in the EU

    Account data, credentials, and uploaded code are stored in Amsterdam, EU (DigitalOcean).

    Isolated Build Servers

    Build servers run in AWS US-East. They are architecturally isolated β€” no access to the customer database or stored credentials.

    Sub-processors

    DigitalOcean (EU), AWS (US), Resend (US), Cloudflare (Global), Google Workspace (US). Full details in our DPA.

    International Transfers

    Transfers are covered by the EU-US Data Privacy Framework, UK-US Data Bridge, or Standard Contractual Clauses.

    Access Control

    Strict controls on who can access what.

    Two-Factor Authentication

    All user logins require 2FA via email.

    Restricted Production Access

    Production database access is limited to authorised personnel on a need-to-know basis.

    No Contractor Access

    Contractor engineers do not have access to production systems or customer data.

    IAM Policies

    Service-level access is restricted to the minimum required via IAM policies.

    Audit Logging

    API usage and access to sensitive resources are logged with IP, user agent, timestamp, and action.

    Backups & Retention

    Your data is backed up and retention is clearly defined.

    Daily Database Backups

    Automated daily backups with 7-day retention and point-in-time rollback capability.

    Category-Based Retention

    Each data type has a defined retention period β€” from 30-day auto-deletion for code to HMRC-compliant billing record retention.

    See our DPA for full retention details

    Dependency Security

    Automated monitoring for vulnerable dependencies.

    Dependabot

    Automated dependency vulnerability monitoring and security update pull requests via GitHub Dependabot.

    Your Data Rights

    You have full control over your data.

    Data Export

    You can request a full export of your account data at any time by contacting us.

    Account Deletion

    You can request deletion of your account and all associated data. Deletion is completed within 30 days.

    Access & Correction

    You have the right to access the personal data we hold about you and request corrections to any inaccuracies.

    How to Exercise Your Rights

    Contact us at [email protected] or reach out to our Data Protection Officer. We respond to all requests without undue delay.

    Documents & Resources